Information Security Bulletin

New IE Attack Code Posted on Xsec

18 Sep 05:30

A cracker has discovered another new vulnerability in IE 6 and posted sample exploit code.

It seems that this vulnerability is somewhat similar to 06-040 patched in August. To work, an attacker will need to lure his victim to a malicious web site but full compromise could be the result of a successful attack. At this stage it is unclear against which combinations of systems and versions of IE this attack will work, though according to the poster of the code it is successful against IE 6 on Windows 2000.

Related links: (Open in a new window.)
xsec.org/index.php?module=Releases&act=view&type=2&id=20

View printable version (opens in new window)
Back

Search ISB News:

Not yet sure you want to subscribe? Download a free sample copy!

Download the much quoted October Editorial

Portal Frontpage
Web Editorial
About This Portal
Contact Info

IS Alerts
General News
Product News
Vendor News
People News
Literature
Events
CHI News

Subscribe Online
About ISB
Publishing in ISB
Advertising in ISB
PR Information

In the current issue:

Security Management
The Importance of Adaptability
Steve Purser

From the Trenches
Reversing Perimeter Defences – a Case Study
Søren Maigaard

Security Architectures
The Self Defending Network: New Trends In ICT Security Infrastructures
Drs. Ing. René Pluis

Subscribe Online!